General
-
Target
85f53bb4cbdc9cb02472139ff44d0c3c4e380aa31276e6f3bc43c980c88878c5
-
Size
479KB
-
Sample
240419-3rd9sabe2z
-
MD5
f3ecea6109d37a99662dcab9c4600bc5
-
SHA1
7becd75f40dc780d42254e66c9902bebad3de0bd
-
SHA256
85f53bb4cbdc9cb02472139ff44d0c3c4e380aa31276e6f3bc43c980c88878c5
-
SHA512
b4a882951a986693e16dd816c9c3b952f2b121db3a29de89354e38084d660b381c2e0bf5827146a2f252813bae5af3991ee38a319209fd713da7c2a357b6fd4d
-
SSDEEP
12288:lXa8sy1OumabQIr8/aqxUwl8hvNze5V+AplJQC7ebs:lq8tiab3r8iwINze5VFlco
Static task
static1
Behavioral task
behavioral1
Sample
85f53bb4cbdc9cb02472139ff44d0c3c4e380aa31276e6f3bc43c980c88878c5.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
85f53bb4cbdc9cb02472139ff44d0c3c4e380aa31276e6f3bc43c980c88878c5.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
85f53bb4cbdc9cb02472139ff44d0c3c4e380aa31276e6f3bc43c980c88878c5
-
Size
479KB
-
MD5
f3ecea6109d37a99662dcab9c4600bc5
-
SHA1
7becd75f40dc780d42254e66c9902bebad3de0bd
-
SHA256
85f53bb4cbdc9cb02472139ff44d0c3c4e380aa31276e6f3bc43c980c88878c5
-
SHA512
b4a882951a986693e16dd816c9c3b952f2b121db3a29de89354e38084d660b381c2e0bf5827146a2f252813bae5af3991ee38a319209fd713da7c2a357b6fd4d
-
SSDEEP
12288:lXa8sy1OumabQIr8/aqxUwl8hvNze5V+AplJQC7ebs:lq8tiab3r8iwINze5VFlco
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-